Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/12/06 4:20 p.m.29 views

Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities

Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to the dependencies in the opensource library libsass-3.5.5 and opennms-opennms-source-25.1.1-1 . These are fixed. Vulnerability Details CVEID:CVE-2018-11696 DESCRIPTION: LibSaas is vulnerable to a denial of servic...

9.8CVSS7.6AI score0.04006EPSS
Exploits14Affected Software1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-4837-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04006EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2020-0049)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.04006EPSS
Exploits9References4
Mageia
Mageia
added 2020/01/28 7:52 a.m.62 views

Updated libsass packages fix security vulnerabilities

Use-after-free vulnerability in sasscontext.cpp:handleerror CVE-2018-11499. Null pointer dereference in Sass::SelectorList::populateextends CVE-2018-19797. Use-after-free vulnerability exists in the SharedPtr class CVE-2018-19827. Stack overflow in Eval::operator CVE-2018-19837. Stack-overflow at...

9.8CVSS4.2AI score0.04006EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2019/07/24 12:0 a.m.46 views

openSUSE Security Update : libsass (openSUSE-2019-1791)

This update for libsass to version 3.6.1 fixes the following issues : Security issues fixed : - CVE-2019-6283: Fixed heap-buffer-overflow in Sass::Prelexer::parenthesescopechar const boo1121943. - CVE-2019-6284: Fixed heap-based buffer over-read exists in Sass:Prelexer:alternatives boo1121944. -...

9.8CVSS6.4AI score0.04006EPSS
Exploits9References24
OpenVAS
OpenVAS
added 2019/07/24 12:0 a.m.35 views

openSUSE: Security Advisory for libsass (openSUSE-SU-2019:1791-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.2AI score0.04006EPSS
Exploits9References2
OSV
OSV
added 2018/12/17 8:29 p.m.18 views

CVE-2018-20190

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operatorSass::SupportsOperator in eval.cpp may cause a Denial of Service application crash via a crafted sass input file...

6.5CVSS6.4AI score
Exploits0References5
CVE
CVE
added 2018/12/17 8:0 p.m.136 views

CVE-2018-20190

CVE-2018-20190 affects LibSass 3.5.5; root cause is a NULL pointer dereference in Sass::Eval::operator() (eval.cpp) that can cause a Denial of Service (crash) with a crafted Sass input. Public details about a patch/fix are not provided in the connected documents; monitor for updated fixes.

6.5CVSS6.2AI score0.02587EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder